if (!empty($setmodules)) { $filename = basename(__FILE__); $module['1610_Users']['130_Userlist'] = $filename; return; } if (!defined('IP_ROOT_PATH')) { define('IP_ROOT_PATH', './../'); } if (!defined('PHP_EXT')) { define('PHP_EXT', substr(strrchr(__FILE__, '.'), 1)); } require 'pagestart.' . PHP_EXT; include IP_ROOT_PATH . 'includes/functions_users_delete.' . PHP_EXT; $mode = request_var('mode', ''); $confirm = check_http_var_exists('confirm', false); if (check_http_var_exists('cancel', false)) { $cancel = true; $mode = ''; } else { $cancel = false; } $start = request_var('start', 0); $start = $start < 0 ? 0 : $start; $show = request_var('show', $config['topics_per_page']); $show = $show < 1 ? $config['topics_per_page'] : $show; $sort_method = request_var('sort', 'user_regdate'); $sort_order = request_var('order', 'ASC'); $sort_order = check_var_value($sort_order, array('DESC', 'ASC')); // alphanumeric stuff $alphanum = request_var('alphanum', ''); if (!empty($alphanum)) {
$is_auth['auth_post'] = 0; } else { $is_auth['auth_delete'] = 1; $is_auth['auth_post'] = 1; } } if(!$is_auth['auth_read']) { message_die(GENERAL_MESSAGE, $lang['Not_Authorized']); } // End auth check $refresh = (check_http_var_exists('auto_refresh', false) || check_http_var_exists('refresh', false)) ? 1 : 0; $submit = (isset($_POST['shout']) && isset($_POST['message'])) ? 1 : 0; $mode = request_var('mode', ''); // Set toggles for various options if (!$config['allow_html']) { $html_on = 0; } else { $html_on = ($submit || $refresh || $preview) ? ((!empty($_POST['disable_html'])) ? 0 : 1) : (($user->data['user_id'] == ANONYMOUS) ? $config['allow_html'] : $user->data['user_allowhtml']); } if (!$config['allow_bbcode']) { $bbcode_on = 0;
// in album.php file in the main folder. // ------------------------------------------------------------------------ // ------------------------------------------------------------------------ // Get the name of this user // ------------------------------------------------------------------------ $username = album_get_user_name($album_user_id); if (empty($username)) { if (!defined('STATUS_404')) { define('STATUS_404', true); } message_die(GENERAL_MESSAGE, 'NO_USER'); } // ------------------------------------ // Build the thumbnail page // ------------------------------------ if (check_http_var_exists('type', false)) { $album_view_type = request_var('type', ''); } $start = request_var('start', 0); $start = $start < 0 ? 0 : $start; $pics_per_page = $album_config['rows_per_page'] * $album_config['cols_per_page']; $limit_sql = $start == 0 ? $pics_per_page : $start . ',' . $pics_per_page; // set some initial values... // $allowed_cat is set in album.php !!! $list_sql = ''; $count_sql = ''; //$album_view_type = ALBUM_LISTTYPE_PICTURES; switch (strtolower($album_view_type)) { case ALBUM_LISTTYPE_RATINGS: $album_view_type = ALBUM_LISTTYPE_RATINGS; // default sorting if not specified directly
$result = $db->sql_query($sql); $resultset = $db->sql_fetchrowset($result); $smile_pak = ''; for ($i = 0; $i < sizeof($resultset); $i++) { $smile_pak .= $resultset[$i]['smile_url'] . $delimiter; $smile_pak .= $resultset[$i]['emoticon'] . $delimiter; $smile_pak .= $resultset[$i]['code'] . "\n"; } header("Content-Type: text/x-delimtext; name=\"smiles.pak\""); header("Content-disposition: attachment; filename=smiles.pak"); echo $smile_pak; exit; } $message = sprintf($lang['export_smiles'], '<a href="' . append_sid('admin_smilies.' . PHP_EXT . '?export_pack=send', true) . '">', '</a>') . '<br /><br />' . sprintf($lang['Click_return_smileadmin'], '<a href="' . append_sid('admin_smilies.' . PHP_EXT) . '">', '</a>') . '<br /><br />' . sprintf($lang['Click_return_admin_index'], '<a href="' . append_sid('index.' . PHP_EXT . '?pane=right') . '">', '</a>'); message_die(GENERAL_MESSAGE, $message); } elseif (check_http_var_exists('add', false)) { // Admin has selected to add a smiley. $template->set_filenames(array('body' => ADM_TPL . 'smile_edit_body.tpl')); $filename_list = ''; for ($i = 0; $i < sizeof($smiley_images); $i++) { $filename_list .= '<option value="' . $smiley_images[$i] . '">' . $smiley_images[$i] . '</option>'; } $s_hidden_fields = '<input type="hidden" name="mode" value="savenew" />'; $template->assign_vars(array('L_SMILEY_TITLE' => $lang['smiley_title'], 'L_SMILEY_CONFIG' => $lang['smiley_config'], 'L_SMILEY_EXPLAIN' => $lang['smile_desc'], 'L_SMILEY_CODE' => $lang['smiley_code'], 'L_SMILEY_URL' => $lang['smiley_url'], 'L_SMILEY_EMOTION' => $lang['smiley_emot'], 'L_SUBMIT' => $lang['Submit'], 'L_RESET' => $lang['Reset'], 'SMILEY_IMG' => IP_ROOT_PATH . $config['smilies_path'] . '/' . $smiley_images[0], 'S_SMILEY_ACTION' => append_sid('admin_smilies.' . PHP_EXT), 'S_HIDDEN_FIELDS' => $s_hidden_fields, 'S_FILENAME_OPTIONS' => $filename_list, 'S_SMILEY_BASEDIR' => IP_ROOT_PATH . $config['smilies_path'])); $template->pparse('body'); } elseif ($mode != '') { // Get the submitted data being careful to ensure the the data we receive and process is only the data we are looking for. $smiley_id = request_var('id', 0); $smile_code = request_post_var('smile_code', '', true); $smile_code = htmlspecialchars_decode($smile_code, ENT_COMPAT); $smile_url = request_post_var('smile_url', '', true);
function update_block_config($blockfile) { global $db; $block_vars_default = array(); $block_count_variables = 0; if (!empty($blockfile)) { $block_vars_default = $this->get_block_vars_default($blockfile); $block_count_variables = sizeof($block_vars_default); $block_vars_default_names = array(); for ($i = 0; $i < $block_count_variables; $i++) { $block_vars_default_names[$block_vars_default[$i]['config_name']] = $i; } } if (!empty($block_vars_default)) { // Let's empty the previously created config vars... $sql = "SELECT * FROM " . $this->tables['block_config_table'] . " WHERE bid = '" . $this->bs_id . "'"; $result = $db->sql_query($sql); while ($row = $db->sql_fetchrow($result)) { $delete_var = in_array($row['config_name'], $block_vars_default_names) ? false : true; if (!empty($delete_var)) { $this->delete_block_config_single($row['config_name']); } } $db->sql_freeresult($result); for ($i = 0; $i < $block_count_variables; $i++) { $config_value_tmp = request_post_var($block_vars_default[$i]['config_name'], '', true); $config_value_tmp = htmlspecialchars_decode($config_value_tmp, ENT_COMPAT); if (check_http_var_exists($block_vars_default[$i]['config_name'], true)) { $block_vars_default[$i]['config_value'] = $config_value_tmp; } $block_var_exists = $this->block_var_exists($block_vars_default[$i]['config_name']); if (empty($block_var_exists)) { $sql = "INSERT INTO " . $this->tables['block_variable_table'] . " (bid, label, sub_label, config_name, field_options, field_values, type, block)\n\t\t\t\t\t\tVALUES ('" . $this->bs_id . "', '" . $db->sql_escape($block_vars_default[$i]['label']) . "', '" . $db->sql_escape($block_vars_default[$i]['sub_label']) . "', '" . $db->sql_escape($block_vars_default[$i]['config_name']) . "', '" . $db->sql_escape($block_vars_default[$i]['field_options']) . "', '" . $block_vars_default[$i]['field_values'] . "', '" . $block_vars_default[$i]['type'] . "', '" . $db->sql_escape($block_vars_default[$i]['block']) . "')"; $result = $db->sql_query($sql); $sql = "INSERT INTO " . $this->tables['block_config_table'] . " (bid, config_name, config_value)\n\t\t\t\t\t\tVALUES ('" . $this->bs_id . "', '" . $db->sql_escape($block_vars_default[$i]['config_name']) . "', '" . $db->sql_escape($block_vars_default[$i]['config_value']) . "')"; $result = $db->sql_query($sql); } else { $sql = "UPDATE " . $this->tables['block_config_table'] . " SET config_value = '" . $db->sql_escape($block_vars_default[$i]['config_value']) . "'\n\t\t\t\t\t\t\t\t\tWHERE config_name = '" . $db->sql_escape($block_vars_default[$i]['config_name']) . "'\n\t\t\t\t\t\t\t\t\t\tAND bid = " . $this->bs_id; $result = $db->sql_query($sql); } } } else { $this->delete_block_config_all(); } return true; }
$message = $lang['Empty_Cache_Success'] . '<br /><br />'; $confirmation = true; } if (check_http_var_exists('confirm_clear_cache_posts', false)) { $sql = "UPDATE " . POSTS_TABLE . " SET post_text_compiled = ''"; $db->sql_return_on_error(true); $result = $db->sql_query($sql); $db->sql_return_on_error(false); if (!$result) { $message .= '<br /><br />' . $lang['MG_SW_Empty_Precompiled_Posts_Fail'] . '<br /><br />'; message_die(GENERAL_MESSAGE, $message); } $message = $lang['MG_SW_Empty_Precompiled_Posts_Success'] . '<br /><br />'; $confirmation = true; } if (check_http_var_exists('confirm_clear_cache_thumbs', false)) { $files_deleted = empty_images_cache_folders(CACHE_FILES_PER_STEP); $redirect_url = append_sid('admin_board_clearcache.' . PHP_EXT . '?confirm_clear_cache_thumbs=' . str_replace('sid=', '', $SID)); if ($files_deleted === CACHE_FILES_PER_STEP) { //meta_refresh(3, $redirect_url); $meta_tag = '</body><head><meta http-equiv="refresh" content="3;url=' . $redirect_url . '"></head><body>'; $message .= $lang['MG_SW_Empty_Precompiled_Posts_InProgress'] . '<br /><br />' . $lang['MG_SW_Empty_Precompiled_Posts_InProgress_Redirect'] . '<br /><br />' . sprintf($lang['MG_SW_Empty_Precompiled_Posts_InProgress_Redirect_Click'], '<a href="' . $redirect_url . '">', '</a>'); message_die(GENERAL_MESSAGE, $meta_tag . $message); } $message = $lang['Empty_Cache_Success'] . '<br /><br />'; $confirmation = true; } if ($confirmation) { $redirect_url = append_sid('admin_board_clearcache.' . PHP_EXT); //meta_refresh(3, $redirect_url); //$meta_tag = '</body><head><meta http-equiv="refresh" content="3;url=' . $redirect_url . '"></head><body>';
$cms_page['page_id'] = 'search'; $cms_page['page_nav'] = (!empty($cms_config_layouts[$cms_page['page_id']]['page_nav']) ? true : false); $cms_page['global_blocks'] = (!empty($cms_config_layouts[$cms_page['page_id']]['global_blocks']) ? true : false); $cms_auth_level = (isset($cms_config_layouts[$cms_page['page_id']]['view']) ? $cms_config_layouts[$cms_page['page_id']]['view'] : AUTH_ALL); check_page_auth($cms_page['page_id'], $cms_auth_level); $mode = request_var('mode', ''); $only_bluecards = (!empty($_POST['only_bluecards']) ? 1 : 0); $search_keywords = request_var('search_keywords', '', true); $is_newposts = false; $search_author = request_var('search_author', '', true); if (!empty($search_author)) { $search_author = phpbb_clean_username($search_author); $search_topic_starter = check_http_var_exists('search_topic_starter', true); } else { $search_author = ''; $search_topic_starter = false; } if (isset($search_mode) && ($search_mode == 'bookmarks')) { // TO DO: force to false, and decide if we would like to overwrite it with Profile Global Blocks settings... //$cms_page['global_blocks'] = (!empty($cms_config_layouts['profile']['global_blocks']) ? true : false); $cms_page['global_blocks'] = false; } $search_terms = request_var('search_terms', '');
// Load default header if (!defined('IP_ROOT_PATH')) { define('IP_ROOT_PATH', './../'); } if (!defined('PHP_EXT')) { define('PHP_EXT', substr(strrchr(__FILE__, '.'), 1)); } include_once IP_ROOT_PATH . 'includes/functions_groups.' . PHP_EXT; require 'pagestart.' . PHP_EXT; $group_id = request_var(POST_GROUPS_URL, 0); $mode = request_var('mode', ''); attachment_quota_settings('group', $_POST['group_update'], $mode); if (check_http_var_exists('edit', false) || isset($_POST['new'])) { // Ok they are editing a group or creating a new group $template->set_filenames(array('body' => ADM_TPL . 'group_edit_body.tpl')); if (check_http_var_exists('edit', false)) { // They're editing. Grab the vars. $sql = "SELECT *\n\t\t\tFROM " . GROUPS_TABLE . "\n\t\t\tWHERE group_single_user <> " . TRUE . "\n\t\t\tAND group_id = {$group_id}"; $result = $db->sql_query($sql); if (!($group_info = $db->sql_fetchrow($result))) { message_die(GENERAL_MESSAGE, $lang['Group_not_exist']); } $mode = 'editgroup'; $template->assign_block_vars('group_edit', array()); } elseif (isset($_POST['new'])) { $group_info = array('group_name' => '', 'group_description' => '', 'group_moderator' => '', 'group_rank' => '0', 'group_color' => '', 'group_legend' => '1', 'group_count' => '99999999', 'group_count_max' => '99999999', 'group_count_enable' => '0', 'group_type' => GROUP_OPEN); $group_open = ' checked="checked"'; $mode = 'newgroup'; } // Ok, now we know everything about them, let's show the page. if ($group_info['group_moderator'] != '') {
$sort_key_sql = $sort_key_sql_array[$sort_key]; $sort_dir = strtolower(request_var('sd', $default_sort_dir)); $sort_dir = check_var_value($sort_dir, $sort_dir_array); $sort_dir_sql = $sort_dir_sql_array[$sort_dir]; // Backward compatibility if (check_http_var_exists('postorder', true)) { $sort_dir_array_old = array('asc', 'desc'); $sort_dir = strtolower(request_var('postorder', $sort_dir_array_old[0])); $sort_dir = check_var_value($sort_dir, $sort_dir_array_old); $sort_dir = ($sort_dir == 'asc') ? 'a' : 'd'; $sort_dir_sql = $sort_dir_sql_array[$sort_dir]; } if (check_http_var_exists('postdays', true)) { $sort_days = request_var('postdays', $default_sort_days); $sort_days = check_var_value($sort_days, $sort_days_array); } $vt_sort_append_array = array(); if ($sort_days != $sort_days_array[0]) { $vt_sort_append_array['st'] = $sort_days; } if ($sort_key != $sort_key_array[0]) { $vt_sort_append_array['sk'] = $sort_key; } if ($sort_dir != $sort_dir_array[0])
$date = $date - $years * 31536000; $weeks = floor($date / 604800); $date = $date - $weeks * 604800; $days = floor($date / 86400); $date = $date - $days * 86400; $hours = floor($date / 3600); $result = ($years ? $years . ' ' . ($years == '1' ? $lang['Account_year'] : $lang['Account_years']) . ', ' : '') . ($years || $weeks ? $weeks . ' ' . ($weeks == '1' ? $lang['Account_week'] : $lang['Account_weeks']) . ', ' : '') . ($years || $weeks || $days ? $days . ' ' . ($days == '1' ? $lang['Account_day'] : $lang['Account_days']) . ', ' : '') . ($years || $weeks || $days || $hours ? $hours . ' ' . ($hours == '1' ? $lang['Account_hour'] : $lang['Account_hours']) : ''); return $result; } } $submit_wait = isset($_POST['submit_wait']) ? true : false; $confirm = isset($_POST['confirm']) ? true : false; $delete = isset($_POST['delete']) ? true : false; $activate = isset($_POST['activate']) ? true : false; $mark_list = !empty($_POST['mark']) ? $_POST['mark'] : 0; if (check_http_var_exists('letter', false)) { $by_letter = request_var('letter', 'all'); } $action = request_var('action', 'inactive'); $action = check_var_value($action, array('inactive', 'active')); $mode = request_var('mode', ''); $start = request_var('start', 0); $start = $start < 0 ? 0 : $start; $user_id = request_var(POST_USERS_URL, 0); $user_id = $user_id < 2 ? ANONYMOUS : $user_id; if (($delete && $confirm || $activate) && $mark_list) { if (sizeof($mark_list)) { $email_id = ''; for ($i = 0; $i < sizeof($mark_list); $i++) { $email_id .= ($email_id != '' ? ', ' : '') . intval($mark_list[$i]); }
for ($i = 0; $i < sizeof($topics_row); $i++) { $sql = "SELECT *\n\t\t\t\tFROM " . TOPICS_TABLE . "\n\t\t\t\tWHERE topic_id = " . $topics_row[$i]['topic_id']; $result = $db->sql_query($sql); $row = $db->sql_fetchrow($result); $db->sql_freeresult($result); //If a blank title was returned, we know the topic doesn't exist anymore if (!isset($row['topic_title'])) { $sql = "DELETE\n\t\t\t\t\tFROM " . RATINGS_TABLE . "\n\t\t\t\t\tWHERE topic_id = " . $topics_row[$i]['topic_id']; $result = $db->sql_query($sql); $admin_message .= '<br />' . $lang['Purged'] . ': ' . $lang['Topic'] . ' # ' . $topics_row[$i]['topic_id']; } } $admin_message .= '<br />' . $lang['Purge'] . ': ' . $lang['Complete']; } //Clear all the data if option selected if (check_http_var_exists('ratings_clear', false)) { $clear_confirm = request_var('ratings_clear_confirm', ''); if (!empty($clear_confirm)) { if (strtoupper($clear_confirm) == 'YES') { $sql = "DELETE\n\t\t\t\tFROM " . RATINGS_TABLE; $result = $db->sql_query($sql); $sql = "UPDATE " . TOPICS_TABLE . " SET topic_rating = '0'"; $result = $db->sql_query($sql); $admin_message .= '<br />' . $lang['Clear'] . ': ' . $lang['Complete']; } } } for ($x = 0; $x < sizeof($forum_row); $x++) { $current_auth = $forum_row[$x]['auth_rate']; if (isset($_POST['forum_update_id_' . $forum_row[$x]['forum_id']]) || isset($_GET['forum_update_id_' . $forum_row[$x]['forum_id']])) { $id_value = request_var('forum_update_id_' . $forum_row[$x]['forum_id'], 0);